Events , Fraud Management & Cybercrime , Ransomware

The Growing Threat of Advanced Ransomware Attacks

Mandiant's Charles Carmakal Discusses the Growing Threat of Advanced Ransomware
Charles Carmakal, chief technology officer, Mandiant

The ever-changing and constantly-present threat of ransomware has become more sophisticated thanks in part to emerging technologies such as artificial intelligence. Cybercriminals have also evolved their attack methods, using advanced tactics to exploit zero-day vulnerabilities and focusing on vulnerable network edge devices (see: The Peril of Badly Secured Network Edge Devices). This ongoing evolution has forced organizations to remain constantly vigilant and consider new, innovative ways to stay one step ahead.

See Also: NHS Ransomware Attack: Healthcare Industry Infrastructures Are Critical

With the stakes growing higher each year, individuals and major organizations need to improve their cyber posture by starting with some basic best practices, according to Mandiant Chief Technology Officer Charles Carmakal. Those include implementing enterprisewide multifactor authentication, and creating defenses against increasingly believable phishing campaigns and advanced intrusion operations.

"A lot of people make certain assumptions around the controls that they have in their environment," Carmakal said. "We still see a lot of remote access solutions that don't require multifactor authentication for every single user."

In this video interview with Information Security Media Group at RSA Conference 2024, Carmakal also discussed:

  • Why English-speaking Western threat actors are adopting Eastern European tactics;
  • Why foreign governments are focusing on zero-days in devices without EDR solutions;
  • What steps organizations can take to improve user verification and poor remote access configuration.

Carmakal oversees a team of incident responders, analysts and security consultants that help thousands of organizations respond to complex security breaches orchestrated by foreign governments and organized criminals. He has over 20 years of experience helping organizations become more resilient to cyberattacks. Prior to Mandiant, he served in various leadership roles within PwC in the U.S. and Australia.

About the Author

Michael Novinson

Michael Novinson

Managing Editor, Business, ISMG

Novinson is responsible for covering the vendor and technology landscape. Prior to joining ISMG, he spent four and a half years covering all the major cybersecurity vendors at CRN, with a focus on their programs and offerings for IT service providers. He was recognized for his breaking news coverage of the August 2019 coordinated ransomware attack against local governments in Texas as well as for his continued reporting around the SolarWinds hack in late 2020 and early 2021.

Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing, you agree to our use of cookies.